This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/hS7RgT3aGNpjDg2o5zlqkEAGb90.roa File: hS7RgT3aGNpjDg2o5zlqkEAGb90.roa (raw, json) Hash identifier: ruxCN88xcOgn5K5hz1rXwR19nQEArZ1nYrpc6XCrIWE= Subject key identifier: 85:2E:D1:81:3D:DA:18:DA:63:0E:0D:A8:E7:39:6A:90:40:06:6F:DD Certificate issuer: /CN=bbd351b274fc23a42728303638a0d62b606401b4 Certificate serial: 019B797EFE98F7D36178ED9946D37F2071C1 Authority key identifier: BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/hS7RgT3aGNpjDg2o5zlqkEAGb90.roa Signing time: Thu 01 Jan 2026 12:18:44 +0000 ROA not before: Thu 01 Jan 2026 12:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6825 IP address blocks: 2001:1578:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.mft rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:fe:98:f7:d3:61:78:ed:99:46:d3:7f:20:71:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbd351b274fc23a42728303638a0d62b606401b4 Validity Not Before: Jan 1 12:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=852ed1813dda18da630e0da8e7396a9040066fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9f:96:77:7f:0e:1c:04:3d:f3:5f:be:68:d8: d8:9a:a2:23:74:c6:c2:64:b3:55:6c:a4:06:f4:63: b3:52:ce:1d:41:f9:37:15:4f:13:85:6f:08:d2:26: e6:dd:07:5a:66:5b:3c:e7:65:1e:ad:fa:29:3f:94: 2f:03:f9:32:5c:ea:a6:04:6e:5f:97:4c:2b:9a:b6: 16:14:62:b6:4d:72:ed:61:7f:76:13:fc:05:c2:99: cd:86:c4:4c:5d:dc:19:30:76:86:09:10:5d:7f:5f: 51:78:92:df:7b:f6:5f:ca:e9:b4:2a:2d:2e:42:d5: b9:91:03:53:10:99:06:df:2d:f0:0c:2a:9f:84:87: eb:f8:e4:c0:7c:84:10:1c:10:20:dd:69:59:9a:41: 85:ab:6e:78:0c:46:44:d1:96:55:8f:a4:a0:cd:5c: ec:71:cc:da:df:ba:eb:fd:96:31:2d:1e:08:96:ed: e3:fc:a9:72:b6:4a:eb:88:e0:64:1e:09:0c:c5:c4: ad:de:5d:76:08:94:16:6e:83:b5:06:b1:98:ec:73: 4c:bf:73:1b:44:49:15:0d:c5:34:25:d2:76:c0:39: e0:7a:07:1e:cd:04:30:aa:25:a8:2a:b4:bc:9b:51: b7:dd:81:a9:0e:26:45:83:64:eb:1e:f9:ca:c5:d1: a8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2E:D1:81:3D:DA:18:DA:63:0E:0D:A8:E7:39:6A:90:40:06:6F:DD X509v3 Authority Key Identifier: keyid:BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/hS7RgT3aGNpjDg2o5zlqkEAGb90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:1578:300::/40 Signature Algorithm: sha256WithRSAEncryption 48:ab:3d:75:a1:0c:da:b6:4f:f0:1a:81:b9:25:98:c9:50:cb: 07:5f:0d:8c:a3:ef:90:87:be:aa:18:f9:97:fa:a9:1a:46:9c: 5d:37:37:c2:83:95:1c:b8:ca:0a:de:da:9c:fd:6e:e6:9d:e7: c2:7e:d1:36:70:3f:24:fe:55:66:b6:5d:0c:d4:72:7b:0c:61: 29:ee:27:eb:40:ed:39:7c:28:59:fe:d8:1e:99:4d:39:24:0e: 56:e3:74:dc:1e:25:08:7f:a1:d7:ed:b6:f1:01:59:db:35:df: 3f:79:6b:d6:d3:17:a3:9f:a4:35:37:97:68:48:13:95:1d:a9: 1b:7c:42:5a:e2:f0:fb:7c:86:dc:1b:70:98:d3:e2:ee:3c:85: a1:ca:7d:ff:0d:5b:67:10:13:dd:33:a2:4c:06:35:8b:a5:2d: 5d:b8:0a:ac:1c:d4:80:d7:34:08:b5:18:1f:cb:07:b9:55:1c: ec:89:c4:92:08:2e:db:25:03:d3:06:4c:6d:43:2e:4e:eb:22: 35:0d:99:14:cc:03:b6:13:ff:b0:7e:83:dd:0c:a4:af:86:90: 9a:84:8c:d0:80:a1:bd:99:52:39:4d:10:85:fb:63:be:20:8a: a6:ff:60:ce:c6:e3:b1:13:fb:7b:ef:92:fe:2e:a1:c7:6f:98: 2e:df:c3:0e -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt5fv6Y99NheO2ZRtN/IHHBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZDM1MWIyNzRmYzIzYTQyNzI4MzAzNjM4YTBkNjJiNjA2 NDAxYjQwHhcNMjYwMTAxMTIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTJlZDE4MTNkZGExOGRhNjMwZTBkYThlNzM5NmE5MDQwMDY2ZmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZ+Wd38OHAQ981++aNjYmqIjdMbC ZLNVbKQG9GOzUs4dQfk3FU8ThW8I0ibm3QdaZls852UerfopP5QvA/kyXOqmBG5f l0wrmrYWFGK2TXLtYX92E/wFwpnNhsRMXdwZMHaGCRBdf19ReJLfe/Zfyum0Ki0u QtW5kQNTEJkG3y3wDCqfhIfr+OTAfIQQHBAg3WlZmkGFq254DEZE0ZZVj6SgzVzs ccza37rr/ZYxLR4Ilu3j/KlytkrriOBkHgkMxcSt3l12CJQWboO1BrGY7HNMv3Mb REkVDcU0JdJ2wDngegcezQQwqiWoKrS8m1G33YGpDiZFg2TrHvnKxdGoFQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFIUu0YE92hjaYw4NqOc5apBABm/dMB8GA1UdIwQY MBaAFLvTUbJ0/COkJygwNjig1itgZAG0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTlOUnNuVDhJNlFuS0RBMk9LRFdLMkJrQWJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9jMWY5MGEtMmJhZC00MWI0LWIxYTYt NDZiMzAyOGEwM2IwLzEvaFM3UmdUM2FHTnBqRGcybzV6bHFrRUFHYjkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC9jMWY5MGEtMmJhZC00MWI0LWIxYTYtNDZiMzAyOGEwM2Iw LzEvdTlOUnNuVDhJNlFuS0RBMk9LRFdLMkJrQWJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAIAEVeAMw DQYJKoZIhvcNAQELBQADggEBAEirPXWhDNq2T/AagbklmMlQywdfDYyj75CHvqoY +Zf6qRpGnF03N8KDlRy4ygre2pz9buad58J+0TZwPyT+VWa2XQzUcnsMYSnuJ+tA 7Tl8KFn+2B6ZTTkkDlbjdNweJQh/odfttvEBWds13z95a9bTF6OfpDU3l2hIE5Ud qRt8Qlri8Pt8htwbcJjT4u48haHKff8NW2cQE90zokwGNYulLV24Cqwc1IDXNAi1 GB/LB7lVHOyJxJIILtslA9MGTG1DLk7rIjUNmRTMA7YT/7B+g90MpK+GkJqEjNCA ob2ZUjlNEIX7Y74giqb/YM7G47ET+3vvkv4uocdvmC7fww4= -----END CERTIFICATE-----Generated at Mon Jan 26 18:17:05 2026 by rpki-client